Name: ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages
Rating: 5
Author: ClickWhale

Issues Details

3074 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$plan_name".	`534:33`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$message'.	`288:26`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$fs'.	`292:105`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$fs'.	`295:94`	Security
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$send_updates_text".	`310:21`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$do_not_send_updates_text".	`316:21`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$send_updates_text'.	`331:69`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$do_not_send_updates_text'.	`335:69`	Security
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$vars".	`345:17`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'fs_get_template'.	`351:22`	Security

3074 total row(s)

External Connections

Hosts referenced or contacted during the latest scan (runtime attempts + static URLs)

Hosts: 45Runtime: 0Static: 127

Source	Host	URL	Plugin File / Stack	Captured
Static	salferrarello.com	https://salferrarello.com/wordpress-sanitize-title-javascript/	assets/admin/js/clickwhale-admin.js:135	11/18/2025, 2:43:43 AM
Static	stackoverflow.com	https://stackoverflow.com/a/18391901	assets/admin/js/clickwhale-admin.js:221	11/18/2025, 2:43:43 AM
Static	cdn.jsdelivr.net	https://cdn.jsdelivr.net/npm/emojibase-data@$%7Be%7D/$%7Bo%7D	assets/admin/js/picmo/picmo.umd.min.js:1	11/18/2025, 2:43:43 AM
Static	cdn.jsdelivr.net	https://cdn.jsdelivr.net/npm/emojibase-data@$%7Bo%7D/$%7Be%7D	assets/admin/js/picmo/picmo.umd.min.js:1	11/18/2025, 2:43:43 AM
Static	fontawesome.com	https://fontawesome.com/	assets/admin/js/picmo/picmo.umd.min.js:1	11/18/2025, 2:43:43 AM
Static	fontawesome.com	https://fontawesome.com/license	assets/admin/js/picmo/picmo.umd.min.js:1	11/18/2025, 2:43:43 AM
Static	fontawesome.com	https://fontawesome.com/	assets/admin/js/picmo/picmo.umd.min.js:8	11/18/2025, 2:43:43 AM
Static	fontawesome.com	https://fontawesome.com/license	assets/admin/js/picmo/picmo.umd.min.js:8	11/18/2025, 2:43:43 AM
Static	fontawesome.com	https://fontawesome.com/	assets/admin/js/picmo/picmo.umd.min.js:14	11/18/2025, 2:43:43 AM
Static	fontawesome.com	https://fontawesome.com/license	assets/admin/js/picmo/picmo.umd.min.js:14	11/18/2025, 2:43:43 AM

127 total row(s)


18.11.2025, 02:43:28	1m 52s	1	2479	595
15.11.2025, 18:32:28	2m 2s	1	2479	595

ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages

Security1648

Plugin Repository1333

General48

Performance9